package com.lute.controller;

import java.util.ArrayList;
import java.util.List;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;

import org.springframework.security.oauth2.common.json.JSONException;
import org.springframework.security.oauth2.common.json.JSONObject;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.ResponseBody;

import com.lute.model.Client;
import com.lute.model.ClientAccountingPeriod;
import com.lute.model.ClientAdminProfile;
import com.lute.model.ClientProfile;
import com.lute.model.EmployeeAccountingPeriod;
import com.lute.model.EmployeeProfile;
import com.lute.model.User;
import com.lute.utils.ServerErrorResponse;

@Controller
public class AddNewClientServlet {
	
	@RequestMapping(value="/addClient", method = RequestMethod.POST,headers = "Content-type=application/json")
	public @ResponseBody String addClient(@RequestBody String dataJSON, HttpServletRequest request) throws JSONException {
		String result = "";
		String newClient;
		JSONObject jsonReq;
		JSONObject jsonRes = new JSONObject();
		
		HttpSession session = request.getSession(false);
		if(session == null) {
			jsonRes.put("result", ServerErrorResponse.USER_NOT_LOGGED_IN.toString());
			result = jsonRes.toString();
			return result;
		}
		
		try {
			jsonReq = new JSONObject(dataJSON);
			newClient = jsonReq.getString("clientName");
		} catch(JSONException e) {
			jsonRes.put("result", ServerErrorResponse.MALFORMED_REQUEST.toString());
			result = jsonRes.toString();
			return result;
		}
		
		/* check if json data was not malformed */
		if(jsonReq.isNull("clientName")) {
			jsonRes.put("result",ServerErrorResponse.MALFORMED_REQUEST.toString());
			result = jsonRes.toString();
			return result;
		}
		
		String role = (String)session.getAttribute("role");
		
		/* check  authorization */
		if(!(role.equals("admin"))) {
			jsonRes.put("result", ServerErrorResponse.USER_NOT_ENTITLED.toString());
			result = jsonRes.toString();
			return result;
		}
		
		/* check if received client name exist */
		Client isExist = Client.getClientFromDB("name", newClient);
		if(!(isExist == null)) {
			jsonRes.put("result", ServerErrorResponse.CLIENT_NAME_NOT_UNIQUE.toString());
			result = jsonRes.toString();
			return result;
		}
		
		Client client = new Client();
		ClientProfile clientProfile = new ClientProfile();
		clientProfile.setClient(client);
		client.setName(newClient);
		
		/* add new client with profile to DataBase */
		ClientProfile.addClientProfileToDB(clientProfile);

		
		jsonRes.put("result","OK");
		result = jsonRes.toString();
		return result;
	}
}
